Security Advisory

CVE-2020-23361

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-27 15:30:07

Last updated 2024-08-04 14:58:15

Assigner mitre

State PUBLISHED

Description

phpList 3.5.3 allows type juggling for login bypass because == is used instead of === for password hashes, which mishandles hashes that begin with 0e followed by exclusively numerical characters.

← Browse all CVEs View on cve.org ↗